Hello Sean,
Thank you for your fast reply.
> or c) use must-staple on a host-by-host basis
I am not exactly sure what hosts have to do with this. The must-staple
extension is a (cryptographically ensured) flag that is 'ingrained' into
a certificate. It tells a client to only accept the cert
On 11/07/2023 5:33 pm, novoMedia via dovecot wrote:
I am not exactly sure what hosts have to do with this. The must-staple
extension is a (cryptographically ensured) flag that is 'ingrained'
into a certificate. It tells a client to only accept the certificate
if a valid and recent OCSP response
On 11/07/2023 6:18 pm, Sean Gallagher wrote:
No confrontation here. I support you with your quest. It's just not
something I think I would ever use or need - so I didn't vote for it.
I also didn't vote against it - it would be nice to have,.
I should clarify. When I say "vote" I mean figurat
Sean Gallagher wrote:
> On 11/07/2023 5:33 pm, novoMedia via dovecot wrote:
> > I am not exactly sure what hosts have to do with this. The must-staple
> > extension is a (cryptographically ensured) flag that is 'ingrained'
> > into a certificate. It tells a client to only accept the certificate
Am Montag, dem 10.07.2023 um 07:52 +0300 schrieb Aki Tuomi via dovecot:
>
>
>
> Technically you could return a keypair for the public user from
> userdb, when the public user is being looked up.
> mail_crypt_global_public/private_key takes precedence over generated
> keys.
>
> Aki
Thanks. Trie
Hi all,
I am trying to setup mailbox sharing (not public mailboxes) together
with mail-crypt plugin and encrypted folder keys.
According to the source code of the mail-crypt plugin (there's code
trying to retrieve private keys for shared mailboxes), and its
documentation, this should be possible:
This is the error I get in the dovecot logs when a user tries to access
a shared mailbox encrypted with another user's folder key:
Jul 11 18:45:27 prokyon dovecot:
imap(us...@mydomain.net)<5015>: Error:
Mailbox Shared/us...@mydomain.net/INBOX: UID=2306: read() failed:
read(/home/vmail/mydomain.
On 7/10/2023 11:18 AM, Anthony Carrico wrote:
On 7/9/23 13:19, joe a wrote:
My attempts thus far seem without results.
What should I expect to see, if anything, in each account for a
successful "share"? Sadly, I see no apparent change in the displayed
folder structure using Thunderbird (most
Okay, after digging into the source code of mail-crypt-plugin.c and
doveadm-mail-crypt.c, it was clear that doveadm should do the trick.
But it didn't...
Further digging into doveadm-mail-crypt.c lead me to mail-crypt-acl-
plugin.c which revealed that there must be an additional plugin called
mai
Hi.
I'm using Dovecot on OpenBSD OS. "dovecot --version" reports: 2.3.20
(80a5ac675d) and this is my configuration file: https://termbin.com/m4to
How to properly set the statistics for the version I use? I have both "service
stats" and "service old-stats" and it seems I'm not really getting any
And if possible, how to disable statistics completely and safely? Without the
"0" trick, that leads getting;
"Jul 12 02:20:55 mail dovecot: auth: Error:
net_connect_unix(/var/dovecot/stats-writer) failed: No such file or directory
Jul 12 02:20:55 mail dovecot: auth: Error: stats: open(old-stats-
On 7/10/23 21:47, Sean Gallagher wrote:
While I am always for security improvements, the utility of this
unclear. I will ABSTAIN from this poll.
Presently, any system administrator who intends to issue must-staple
certificates, faces the dilemma to either chose to
a) Refrain from issuing mus
Hello,
To users of argon2id as a password hash, what are best practices/what
do you use to generate the argon2id password hashes? I want to know if
I should do more than:
doveadm pw -s ARGON2ID
Also, for storing an argon2id password hash in a database
(mysql/mariadb in this example) what value(s
> On 12/07/2023 02:53 EEST rixati6186--- via dovecot
> wrote:
>
>
> And if possible, how to disable statistics completely and safely? Without the
> "0" trick, that leads getting;
>
> "Jul 12 02:20:55 mail dovecot: auth: Error:
> net_connect_unix(/var/dovecot/stats-writer) failed: No such
Thank you very much Mr. Aki for your quick and prompt reply! Got it.
Is my configuration properly aligned for new metrics? Is "service stats" block
(which I assume it's new one) enough to enable new metrics?
Kindest Regards.
Konstantin
___
dovecot mail
> On 12/07/2023 09:33 EEST rixati6186--- via dovecot
> wrote:
>
>
> Thank you very much Mr. Aki for your quick and prompt reply! Got it.
>
> Is my configuration properly aligned for new metrics? Is "service stats"
> block (which I assume it's new one) enough to enable new metrics?
>
> Kin
16 matches
Mail list logo
